Sharing our performance and security knowledge. A place where we record insights, research and thought leadership.
This articles explains how the WordPress JSON API and XMLRPC can be used to attack WordPress website using Brute Force techniques.
Analysis of how a PHP Backdoor on a compromised WordPress site is being used to start DDoS Attacks
This article explains how to protect SSH on web servers using basic Tips but placing emphasis on IP whitelisting.
Apache is a powerful web server and logging is a critical piece to managing a web server. In this article we explain the two log types: access and error, and how to work with them.
This articles provides a a basic framework that security teams can use to build an incident response plan.
This articles talks about two SQLi vulnerabilities in WooCommerce, patched in 2021.
This articles explains the NOC architecture, diving into the details to understand how it works.
This articles provides a guide on how to harden WordPress to keep hackers out of the website.
This articles explains Arbitrary File Upload Vulnerabilities and why they matter to the security of your website.
DNS stands for Domain Name System (DNS), you might hear it used interchangeably with Domain Name Server (DNS).. This article explains DNS, and how it works
This article explains why it's important to monitor assets like servers, websites and domains.
This article explains how CDN's can have a positive effect on the performance of a website.
This article explains how CDN's can have a positive effect on the performance of a website.
This aricle explains the differences between Registries, Registrars and DNS services.
This article explains how automating the detection of downtime can be crucial to an organization and DevSecOps team.
This article explains how cURL can be used to measure the performance of a website.
This article explains how cURL can be used to compare performance against different CDN providers (e.g., NOC vs Sucuri, NOC vs CloudFlare).